Improper Property Maintenance in Google Chrome Extensions Subsystem

Improper Property Maintenance in Google Chrome Extensions Subsystem

CVE-2016-1632 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript code that triggers an incorrect cast, related to extensions/renderer/v8_helpers.h and gin/converter.h.

Learn more about our Cis Benchmark Audit For Google Chrome.